Security Systems & Compliance Specialist

Overview

As a Security Systems & Compliance Specialist, you'll be responsible for managing the organization’s occupational safety, physical security, information security, and business resilience compliance programs. This includes maintaining compliance with ISO 45001 (Occupational Health & Safety Management Systems), SOC 1 and SOC 2 audit frameworks, ISO 27001 (Information Security Management Systems), ISO 50001 (Energy Management Systems), and the company’s Business Resilience Planning (BRP). The specialist supports audits, incident management, risk assessments, security compliance activities, and documentation to ensure a safe, secure, and resilient operating environment.

What You'll Do

Compliance

• ISO 45001 – Occupational Health & Safety Management Systems:
  Provides a framework for identifying, controlling, and reducing workplace hazards, promoting employee well‑being, and achieving continual improvement in safety performance. Responsibilities include hazard assessments, safety documentation, and audit readiness.
• SOC 1 – System and Organization Controls (Financial Reporting):
  Ensures internal controls over financial reporting are designed and operating effectively, particularly where systems or processes impact client financial data.
• SOC 2 – System and Organization Controls (Security, Availability, Processing Integrity, Confidentiality, and Privacy):
  Ensures adequate controls for protecting client data across security domains. Responsibilities include control documentation, evidence gathering, and audit coordination.
• ISO 27001 – Information Security Management Systems:
  Focuses on protecting confidentiality, integrity, and availability of information through risk assessment, security policies, incident management, and continuous security improvements.
• ISO 50001 – Energy Management Systems:
  Provides a systematic approach for improving energy performance, energy use monitoring, and implementing operational controls that reduce environmental and energy impacts.
• Business Resilience Planning (BRP):
  Ensures organizational readiness and recovery capabilities through business continuity planning, emergency response development, risk mitigation strategies, and periodic scenario testing.

Additional responsibilities:

• Conduct internal audits, inspections, and risk assessments related to safety, information security, and physical security.
• Maintain incident logs, corrective action tracking, root‑cause analyses, and regulatory documentation.
• Support development and testing of emergency response, crisis management, and business continuity plans.
• Perform compliance reporting for senior management and external stakeholders.
• Evaluate safety/security controls for effectiveness and identify improvement opportunities.
• Interact with internal and external auditors, investigators, and client representatives.
• Develop and deliver training programs for safety, security, and business resilience.

Security

• Support physical and product security programs, including documentation review, compliance checks, and coordination with security operations.
• Assist with the review of security incidents, discrepancies, and investigation reports.
• Support compliance with regulatory and client‑specific security requirements.

Other

• Establish objectives and measure results for assigned areas.
• Identify training needs and recommend development plans.
• Perform other duties as required.

What You'll Bring

Education and Experience Required

• Bachelor’s degree in safety, security, information systems, business, or related field
• 3–6 years of experience in safety compliance, information security, or audit‑driven environments

Skills Required

• Experience managing internal and external audits.
• Knowledge of ISO 45001, SOC 1/SOC 2, ISO 27001, and business continuity frameworks.
• Working knowledge of electronic security hardware and software systems.
• Strong analytical, problem‑solving, and critical‑thinking skills.
• Excellent communication and interpersonal abilities across all levels of the organization.
• Skilled in training development and delivery.
• Intermediate proficiency in Microsoft Office Suite.

What Will Make You Stand Out

• Certifications such as ISO Lead Auditor (45001 or 27001), CISM, CISSP, CBCP, or other safety/security credentials.
• Six Sigma or Lean experience.

Success Profile

• Leading Complexity
• Leading People
• Leading the Business
• Leading Self

#LI-MS1